﻿using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Mvc;
using System.Web.Routing;
using System.Web.Security;
using MvcMovie.Models;

namespace MvcMovie.Controllers
{
    public class AccountController : Controller
    {

        //
        // GET: /Account/LogOn

        public ActionResult LogOn()
        {
            return View();
        }

        //
        // POST: /Account/LogOn

        [HttpPost]
        public ActionResult LogOn( LogOnModel model, string returnUrl )
        {
            if ( ModelState.IsValid )
            {
                if ( Membership.ValidateUser( model.UserName, model.Password ) )
                {
                    FormsAuthentication.SetAuthCookie( model.UserName, model.RememberMe );
                    if ( Url.IsLocalUrl( returnUrl ) && returnUrl.Length > 1 && returnUrl.StartsWith( "/" )
                        && !returnUrl.StartsWith( "//" ) && !returnUrl.StartsWith( "/\\" ) )
                    {
                        return Redirect( returnUrl );
                    }
                    else
                    {
                        return RedirectToAction( "Index", "Home" );
                    }
                }
                else
                {
                    ModelState.AddModelError( "", "The user name or password provided is incorrect." );
                }
            }

            // If we got this far, something failed, redisplay form
            return View( model );
        }

        //
        // GET: /Account/LogOff

        public ActionResult LogOff()
        {
            FormsAuthentication.SignOut();

            return RedirectToAction( "Index", "Home" );
        }

        //
        // GET: /Account/Register

        public ActionResult Register()
        {
            return View();
        }

        //
        // POST: /Account/Register

        [HttpPost]
        public ActionResult Register( RegisterModel model )
        {
            if ( ModelState.IsValid )
            {
                // Attempt to register the user
                MembershipCreateStatus createStatus;
                Membership.CreateUser( model.UserName, model.Password, model.Email, null, null, true, null, out createStatus );

                if ( createStatus == MembershipCreateStatus.Success )
                {
                    FormsAuthentication.SetAuthCookie( model.UserName, false /* createPersistentCookie */);
                    return RedirectToAction( "Index", "Home" );
                }
                else
                {
                    ModelState.AddModelError( "", ErrorCodeToString( createStatus ) );
                }
            }

            // If we got this far, something failed, redisplay form
            return View( model );
        }

        //
        // GET: /Account/ChangePassword

        [Authorize]
        public ActionResult ChangePassword()
        {
            return View();
        }

        //
        // POST: /Account/ChangePassword

        [Authorize]
        [HttpPost]
        public ActionResult ChangePassword( ChangePasswordModel model )
        {
            if ( ModelState.IsValid )
            {

                // ChangePassword will throw an exception rather
                // than return false in certain failure scenarios.
                bool changePasswordSucceeded;
                try
                {
                    MembershipUser currentUser = Membership.GetUser( User.Identity.Name, true /* userIsOnline */);
                    changePasswordSucceeded = currentUser.ChangePassword( model.OldPassword, model.NewPassword );
                }
                catch ( Exception )
                {
                    changePasswordSucceeded = false;
                }

                if ( changePasswordSucceeded )
                {
                    return RedirectToAction( "ChangePasswordSuccess" );
                }
                else
                {
                    ModelState.AddModelError( "", "The current password is incorrect or the new password is invalid." );
                }
            }

            // If we got this far, something failed, redisplay form
            return View( model );
        }

        //
        // GET: /Account/ChangePasswordSuccess

        public ActionResult ChangePasswordSuccess()
        {
            return View();
        }

        #region Status Codes
        private static string ErrorCodeToString( MembershipCreateStatus createStatus )
        {
            // See http://go.microsoft.com/fwlink/?LinkID=177550 for
            // a full list of status codes.
            switch ( createStatus )
            {
                case MembershipCreateStatus.DuplicateUserName:
                    return "User name already exists. Please enter a different user name.";

                case MembershipCreateStatus.DuplicateEmail:
                    return "A user name for that e-mail address already exists. Please enter a different e-mail address.";

                case MembershipCreateStatus.InvalidPassword:
                    return "The password provided is invalid. Please enter a valid password value.";

                case MembershipCreateStatus.InvalidEmail:
                    return "The e-mail address provided is invalid. Please check the value and try again.";

                case MembershipCreateStatus.InvalidAnswer:
                    return "The password retrieval answer provided is invalid. Please check the value and try again.";

                case MembershipCreateStatus.InvalidQuestion:
                    return "The password retrieval question provided is invalid. Please check the value and try again.";

                case MembershipCreateStatus.InvalidUserName:
                    return "The user name provided is invalid. Please check the value and try again.";

                case MembershipCreateStatus.ProviderError:
                    return "The authentication provider returned an error. Please verify your entry and try again. If the problem persists, please contact your system administrator.";

                case MembershipCreateStatus.UserRejected:
                    return "The user creation request has been canceled. Please verify your entry and try again. If the problem persists, please contact your system administrator.";

                default:
                    return "An unknown error occurred. Please verify your entry and try again. If the problem persists, please contact your system administrator.";
            }
        }
        #endregion
    }
}
